Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2016

4217 matches found

CVE
CVEadded 2017/03/17 12:59 a.m.73 views

CVE-2017-0024

The kernel-mode drivers in Microsoft Windows 10 1607 and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." This vulnerability is different from those described in CVE-2017-0026, CVE-2017-0056, CVE-2017-0078, CVE-20...

7.8CVSS6AI score0.06734EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.73 views

CVE-2017-0095

Hyper-V in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly validate vSMB packet data, which allows attackers to execute arbitrary code on a target OS, aka "Hyper-V vSMB Remote Code Execution Vulnerability." This vulnerability is different from that described in C...

7.9CVSS7.7AI score0.01164EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.73 views

CVE-2017-0188

A Win32k information disclosure vulnerability exists in Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, Windows 10, and Windows Server 2016 when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obta...

3.3CVSS4.8AI score0.05109EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.73 views

CVE-2017-0191

A denial of service vulnerability exists in the way that Windows 7, Windows 8.1, Windows 10, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system t...

5.8CVSS6.1AI score0.01574EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-0292

Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows remote code execution if a user opens a specially crafted PDF file, aka "Windows PDF Remote Code Execution Vulnerability". This CVE ID is unique from CVE-20...

9.3CVSS6.4AI score0.28742EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-0298

A DCOM object in Helppane.exe in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016, when configured to run as the interactive user, allows an authenticated attacker to...

7.3CVSS5.8AI score0.00872EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-8462

The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application. aka "Window...

5CVSS4.8AI score0.15731EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-8485

The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application. aka "Window...

5CVSS4.8AI score0.15731EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.73 views

CVE-2017-8683

Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows an attacker to execute remote code by the way it handles embedded fonts, aka "Win32k ...

5.5CVSS7.2AI score0.66013EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.73 views

CVE-2017-8688

Windows GDI+ on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows information disclosure by the way it discloses kernel memory addresses, aka "Windows GDI+...

5.5CVSS6.1AI score0.26895EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.73 views

CVE-2018-8436

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects Windows 10, Windows 10 Servers. This CVE ID is uni...

6.2CVSS6.2AI score0.00513EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.73 views

CVE-2019-1409

An information disclosure vulnerability exists when the Windows Remote Procedure Call (RPC) runtime improperly initializes objects in memory, aka 'Windows Remote Procedure Call Information Disclosure Vulnerability'.

5.5CVSS6.6AI score0.00655EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.73 views

CVE-2019-1415

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS8.5AI score0.0038EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.73 views

CVE-2020-0725

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE...

7.8CVSS7.7AI score0.00549EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.73 views

CVE-2020-0752

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0666, CVE-2020-0667, CVE-2020-0735.

7.8CVSS8.1AI score0.00511EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.73 views

CVE-2020-0763

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Defender Security Center Elevation of Privilege Vulnerability'. This CVE ID is uniq...

7.8CVSS8.5AI score0.00502EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.73 views

CVE-2020-0779

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0798, CVE-2020-0814, CVE-2020-0842, CVE-2020-0843.

5.5CVSS6.4AI score0.00646EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.73 views

CVE-2020-0780

An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory, aka 'Windows Network List Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00502EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.73 views

CVE-2020-0805

A security feature bypass vulnerability exists when a Windows Projected Filesystem improperly handles file redirections. An attacker who successfully exploited this vulnerability could delete a targeted file they would not have permissions to.To exploit this vulnerability, an attacker would first h...

5.5CVSS5.5AI score0.00428EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.73 views

CVE-2020-0897

An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly handles file operations, aka 'Windows Work Folder Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0777, CVE-2020-0797, CVE-2020-0800, CVE-2020-0864, CVE-2020-0865, CVE-2...

7.8CVSS7.6AI score0.00538EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.73 views

CVE-2020-0947

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0945, CVE-2020-0946.

5.5CVSS5.6AI score0.24868EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.73 views

CVE-2020-1021

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1082, CVE-2020-1088.

7.8CVSS8.5AI score0.00285EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.73 views

CVE-2020-1079

An elevation of privilege vulnerability exists when the Windows fails to properly handle objects in memory, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1010, CVE-2020-1068.

7.8CVSS8.4AI score0.00397EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.73 views

CVE-2020-1244

A denial of service vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-1120.

7.1CVSS6.2AI score0.05147EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.73 views

CVE-2020-1347

An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations, aka 'Windows Storage Services Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00513EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.73 views

CVE-2020-16879

An information disclosure vulnerability exists when a Windows Projected Filesystem improperly handles file redirections. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's systemTo exploit this vulnerability, an attacker would first h...

5.5CVSS5.3AI score0.01039EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.73 views

CVE-2021-26880

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00513EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.73 views

CVE-2021-26889

Windows Update Stack Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00679EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.73 views

CVE-2023-35346

Windows DNS Server Remote Code Execution Vulnerability

6.6CVSS8.1AI score0.00226EPSS
CVE
CVEadded 2024/09/10 5:15 p.m.73 views

CVE-2024-38238

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00588EPSS
CVE
CVEadded 2024/09/10 5:15 p.m.73 views

CVE-2024-38247

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00588EPSS
CVE
CVEadded 2024/09/10 5:15 p.m.73 views

CVE-2024-38249

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.01311EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.73 views

CVE-2024-43564

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.05181EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.73 views

CVE-2024-49108

Windows Remote Desktop Services Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.00221EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21214

Windows BitLocker Information Disclosure Vulnerability

4.2CVSS4.3AI score0.0008EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21217

Windows NTLM Spoofing Vulnerability

6.5CVSS6.5AI score0.00194EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21238

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21239

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21240

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00706EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21256

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21266

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00706EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21269

Windows HTML Platforms Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00128EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.73 views

CVE-2025-21305

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.73 views

CVE-2025-24048

Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.9AI score0.00074EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.73 views

CVE-2025-24059

Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00111EPSS
CVE
CVEadded 2025/06/10 5:21 p.m.73 views

CVE-2025-24069

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00048EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.73 views

CVE-2025-24995

Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00085EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.72 views

CVE-2016-3343

The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted appl...

9.3CVSS7.5AI score0.1385EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.72 views

CVE-2016-7221

Input Method Editor (IME) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to gain privileges via...

7.8CVSS7.6AI score0.01519EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.72 views

CVE-2017-0156

An elevation of privilege vulnerability exists in Windows 7, Windows 8.1, Windows RT 8.1, Windows 10, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 when the Microsoft Graphics Component fails to properly handle objects in memory, aka "Windows Graphics ...

7CVSS7.2AI score0.01085EPSS
Total number of security vulnerabilities4217